Microsoft AZ-305 Designing Microsoft Azure Infrastructure Solutions Free Practice Test — 30 Questions

Question 1

A company is implementing Azure Activity Logs and Audit Logs to enhance its security and compliance posture. The security team needs to analyze the logs to identify unauthorized access attempts and changes to critical resources. They want to ensure that they can retain logs for a minimum of 365 days while also being able to query logs efficiently for specific events. Which approach should the team take to achieve these requirements effectively?

Accepted Answer

Configure Azure Monitor to collect Activity Logs and set up a Log Analytics workspace with a retention policy of 365 days.

Question 2

A company is implementing a new Azure-based application that requires secure communication between its various microservices. The architecture involves multiple virtual networks (VNets) and subnets, and the company wants to ensure that only authorized services can communicate with each other. Which approach would best enhance the security of the network while allowing necessary communication between the microservices?

Accepted Answer

Implement Network Security Groups (NSGs) with specific inbound and outbound rules for each subnet to control traffic flow.

Question 3

A company is deploying a web application on Azure that requires high availability and scalability. They decide to use Azure Load Balancer to distribute incoming traffic across multiple virtual machines (VMs). The application is expected to handle a peak load of 10,000 requests per minute. Each VM can handle 2,000 requests per minute. Given this scenario, what is the minimum number of VMs required to ensure that the application can handle the peak load without any performance degradation?

Accepted Answer

5

Question 4

A company is looking to automate the deployment of its Azure resources to improve efficiency and reduce human error. They want to implement Azure Automation to manage their resources effectively. The automation process involves creating runbooks that can execute tasks such as starting and stopping virtual machines, managing updates, and scaling resources based on demand. The company is particularly interested in understanding how to best utilize Azure Automation to monitor and respond to changes in their environment. Which of the following strategies would be the most effective for ensuring that their automation processes are both responsive and efficient?

Accepted Answer

Implementing a combination of scheduled runbooks and webhook-triggered runbooks to handle both periodic tasks and real-time events.

Question 5

A company is deploying a web application that experiences fluctuating traffic patterns throughout the day. They want to ensure high availability and optimal performance by distributing incoming requests across multiple servers. The application is hosted on Azure, and the company is considering different load balancing strategies. Which strategy would best accommodate the variable traffic while minimizing latency and ensuring that no single server is overwhelmed?

Accepted Answer

Implementing Azure Load Balancer with a dynamic load balancing algorithm

Question 6

A company is implementing Desired State Configuration (DSC) to manage its server infrastructure. They want to ensure that all servers maintain a specific configuration state, including installed features, services, and registry settings. The team is considering using a combination of DSC resources to achieve this. Which of the following approaches best describes how to effectively utilize DSC to ensure that the desired state is consistently applied across all servers in the environment?

Accepted Answer

Create a DSC configuration script that defines the desired state for each server, including the necessary resources, and apply it using the Start-DscConfiguration cmdlet with the -Wait and -Force parameters to ensure immediate compliance.

Question 7

A financial services company is experiencing a significant increase in traffic to its Azure-hosted applications due to a promotional campaign. To ensure that their services remain available and resilient against potential Distributed Denial of Service (DDoS) attacks, the company decides to implement Azure DDoS Protection. They need to understand the differences between the Basic and Standard tiers of Azure DDoS Protection. Which of the following statements accurately describes a key feature of Azure DDoS Protection Standard that is not available in the Basic tier?

Accepted Answer

Azure DDoS Protection Standard provides adaptive tuning and real-time telemetry to help mitigate attacks more effectively.

Question 8

A company is implementing Role-Based Access Control (RBAC) in their Azure environment to manage access to resources effectively. They have defined several roles, including \"Reader,\" \"Contributor,\" and \"Owner.\" The security team needs to ensure that a specific group of users can only view resources without making any changes. However, they also want to allow these users to create support tickets for issues they encounter. Which approach should the security team take to achieve this requirement while adhering to the principle of least privilege?

Accepted Answer

Assign the "Reader" role to the users and create a custom role that includes permissions for creating support tickets.

Question 9

A company is designing a multi-tier application architecture in Azure to enhance scalability and maintainability. They want to ensure that the application can handle varying loads efficiently while minimizing costs. Which design pattern should they implement to achieve this goal effectively?

Accepted Answer

Microservices architecture

Question 10

A financial services company is experiencing a significant increase in web traffic due to a promotional campaign. They are concerned about the potential for Distributed Denial of Service (DDoS) attacks that could disrupt their online services. The company decides to implement Azure DDoS Protection to safeguard their applications. Which of the following strategies should they prioritize to effectively utilize Azure DDoS Protection and ensure their applications remain available during peak traffic periods?

Accepted Answer

Configure DDoS Protection Standard to automatically adjust thresholds based on traffic patterns and enable logging for real-time monitoring.

Question 11

A company is planning to implement Azure Site Recovery (ASR) to ensure business continuity for its critical applications hosted on virtual machines (VMs) in Azure. They have a primary site in the East US region and want to replicate their VMs to a secondary site in the West US region. The company has a total of 10 VMs, each with a size of Standard_DS2_v2, and they expect to have a recovery point objective (RPO) of 30 seconds. What considerations should the company take into account regarding the bandwidth requirements for the replication of these VMs, assuming that each VM generates approximately 10 GB of data changes per day?

Accepted Answer

The company needs to ensure that their bandwidth can support a minimum of 1.2 Mbps for continuous replication.

Question 12

A company is planning to deploy a multi-tier application in Azure that consists of a web front-end, an application layer, and a database layer. The team is considering how to organize these resources within Azure Resource Groups to optimize management and billing. Given that the application will be deployed across multiple regions for redundancy and performance, which approach should the team take to effectively manage these resources while ensuring that they can easily track costs and apply policies?

Accepted Answer

Create a separate Resource Group for each tier of the application, and deploy each tier in the same region to simplify management and cost tracking.

Question 13

In a large organization, the IT department is tasked with managing access to various Azure resources. They decide to implement Role-Based Access Control (RBAC) to ensure that employees have the appropriate permissions based on their roles. The organization has three distinct roles: Developer, Tester, and Administrator. Each role has specific permissions assigned to it. A Developer should be able to create and manage resources, a Tester should have read-only access to resources, and an Administrator should have full control over all resources. If a new employee is hired as a Developer, what is the most effective way to assign permissions while ensuring compliance with the principle of least privilege?

Accepted Answer

Assign the Developer role to the new employee, allowing them to create and manage resources without unnecessary permissions.

Question 14

A multinational corporation is implementing Azure Active Directory (Azure AD) to manage user identities and access across its various global offices. The IT team is tasked with ensuring that users can access resources based on their roles while maintaining compliance with data protection regulations. They decide to implement role-based access control (RBAC) and conditional access policies. Which approach should the IT team prioritize to effectively manage user identities and access while ensuring compliance with regulations such as GDPR?

Accepted Answer

Implementing Azure AD Privileged Identity Management (PIM) to manage and monitor privileged accounts and access rights dynamically.

Question 15

A company is planning to implement Azure Site Recovery (ASR) to ensure business continuity for its critical applications hosted on virtual machines (VMs) in Azure. They have a total of 10 VMs that need to be replicated to a secondary Azure region. Each VM has a size of Standard_DS2_v2, which has a cost of $0.096 per hour for compute resources. The company wants to calculate the estimated monthly cost of running these VMs in the secondary region during a disaster recovery test that lasts for 72 hours. Additionally, they need to consider the data transfer costs for replicating the VMs, which is estimated at $0.02 per GB, with each VM generating approximately 50 GB of data per day. What is the total estimated cost for the disaster recovery test, including both compute and data transfer costs?

Accepted Answer

$1,080.00

Question 16

A company is planning to migrate its existing on-premises data storage to Azure Blob Storage to enhance scalability and accessibility. They have a dataset of 10 TB that consists of images, videos, and documents. The company anticipates that the data will grow by 20% annually. They want to implement a cost-effective solution that allows them to access frequently used data quickly while also ensuring that less frequently accessed data is stored at a lower cost. Which storage tier should the company primarily utilize for their Blob Storage, considering their access patterns and growth projections?

Accepted Answer

Hot

Question 17

A multinational corporation is migrating its on-premises Active Directory (AD) to Azure Active Directory (Azure AD) to enhance its identity management and security posture. The IT team is tasked with ensuring that the migration maintains compliance with GDPR while also implementing a zero-trust security model. Which approach should the team prioritize to achieve these objectives effectively?

Accepted Answer

Implement Conditional Access policies that require multi-factor authentication (MFA) for all users accessing sensitive resources, regardless of their location or device.

Question 18

A company is implementing Azure Automation to streamline their operational processes. They want to create a runbook that automatically scales their virtual machines based on CPU usage. The runbook should trigger when the average CPU usage exceeds 70% over a 5-minute period. Which of the following configurations would best achieve this goal while ensuring that the runbook is efficient and minimizes unnecessary scaling actions?

Accepted Answer

Use a scheduled runbook that checks CPU usage every 5 minutes and scales up the VMs if the average CPU usage exceeds 70% during that interval.

Question 19

A company is planning to implement Azure Site Recovery (ASR) to ensure business continuity for its critical applications hosted on virtual machines (VMs) in Azure. The company has two regions: East US and West US. They want to set up a disaster recovery plan that allows for the replication of VMs from East US to West US. The company has a total of 10 VMs, each with a size of Standard_DS2_v2, and they expect to have a recovery point objective (RPO) of 30 minutes. Given that the average data change rate for these VMs is 5 GB per hour, calculate the total amount of data that needs to be replicated to meet the RPO within a 30-minute window. Additionally, consider the implications of network bandwidth and the Azure pricing model for data transfer when determining the best approach for replication.

Accepted Answer

2.5 GB

Question 20

A multinational corporation is planning to migrate its data storage to Microsoft Azure. The company operates in multiple regions, including the European Union, where it must comply with the General Data Protection Regulation (GDPR). As part of the migration strategy, the company needs to ensure that personal data is processed in a manner that meets GDPR requirements. Which of the following strategies would best ensure compliance with GDPR while utilizing Azure services?

Accepted Answer

Implement data encryption both at rest and in transit, and ensure that data residency is maintained within the EU region.

Question 21

A financial services company is planning to migrate its on-premises data warehouse to Azure. The data warehouse contains sensitive customer information and large volumes of historical transaction data. The company is considering two migration strategies: a \"lift-and-shift\" approach and a \"refactor\" approach. Which strategy would best ensure minimal disruption to operations while maintaining compliance with data protection regulations, and what factors should be considered in this decision?

Accepted Answer

Lift-and-shift migration with a focus on security and compliance controls

Question 22

In a microservices architecture deployed on Azure, a company is experiencing issues with service communication and data consistency across its services. They are considering implementing the Saga pattern to manage distributed transactions. Which of the following best describes the advantages of using the Saga pattern in this scenario?

Accepted Answer

It allows for long-running transactions to be managed in a way that ensures eventual consistency without locking resources.

Question 23

A company is implementing Desired State Configuration (DSC) to manage its server environment. They have multiple servers that need to be configured to ensure they all have the same software installed and configured in a specific manner. The company decides to use a DSC configuration script that includes a set of resources to ensure compliance. However, they are concerned about the potential drift from the desired state due to manual changes made by administrators. Which approach should the company take to ensure that the servers remain compliant with the DSC configuration over time?

Accepted Answer

Implement a DSC pull server that regularly checks the configuration and applies any necessary changes to bring the servers back to the desired state.

Question 24

A company is planning to migrate its existing on-premises application that stores large amounts of unstructured data, such as images and videos, to Azure Blob Storage. The application requires high availability and low latency for data access. The company also needs to ensure that the data is stored securely and can be accessed by multiple applications across different regions. Given these requirements, which storage tier should the company choose for optimal performance and cost-effectiveness, considering the expected access patterns and data lifecycle management?

Accepted Answer

Hot

Question 25

A multinational corporation is planning to expand its operations by deploying a new application that requires low latency and high availability across multiple regions. The application will be hosted in Azure, and the company is considering the use of Azure data centers. Given the need for compliance with data residency regulations and the requirement for disaster recovery, which strategy should the company adopt to ensure optimal performance and compliance?

Accepted Answer

Deploy the application across multiple Azure regions with geo-redundant storage and configure Azure Traffic Manager for load balancing.

Question 26

A company is looking to automate the deployment of its Azure resources to improve efficiency and reduce manual errors. They want to implement Azure Automation to manage their infrastructure as code. The team is considering using runbooks to automate the deployment process. Which of the following statements best describes the capabilities and considerations of using Azure Automation runbooks in this scenario?

Accepted Answer

Azure Automation runbooks can be created using PowerShell or Python, allowing for flexible scripting options, and they can be triggered manually, on a schedule, or in response to events, making them suitable for various automation scenarios.

Question 27

A company is evaluating its Azure spending and wants to implement a cost management strategy to optimize its cloud expenses. They currently have multiple subscriptions across different departments, and they are considering using Azure Cost Management tools to analyze their spending patterns. If the company identifies that one department is consistently overspending by 25% compared to its budget, which of the following actions would be the most effective first step to address this issue?

Accepted Answer

Set up budget alerts for the overspending department to notify stakeholders when spending approaches the budget limit.

Question 28

A company is monitoring its Azure resources and wants to ensure that it can effectively analyze the performance and health of its applications. They are particularly interested in understanding the relationship between CPU usage and application response time. The company has set up Azure Monitor to collect metrics and logs. If the average CPU usage of their application servers is 75% and the average response time is 300 milliseconds, what would be the expected impact on application performance if the CPU usage increases to 90%? Assume that the response time increases linearly with CPU usage.

Accepted Answer

The response time will increase to 360 milliseconds.

Question 29

A company is deploying a web application that experiences fluctuating traffic patterns throughout the day. They want to ensure high availability and optimal performance for users accessing the application from different geographical locations. The company is considering implementing Azure Traffic Manager for load balancing. Which of the following configurations would best optimize the performance and availability of the application while minimizing latency for users?

Accepted Answer

Configure Azure Traffic Manager with the Performance routing method and set up multiple Azure regions hosting the application to direct users to the nearest region based on their geographic location.

Question 30

A company is planning to deploy a web application on Azure that will require multiple resources, including virtual machines (VMs), storage accounts, and a load balancer. The estimated usage for the VMs is 200 hours per month, with each VM costing $0.10 per hour. The storage account is expected to consume 500 GB of data, with a cost of $0.02 per GB. Additionally, the load balancer will incur a fixed monthly fee of $20. If the company wants to calculate the total estimated monthly cost using the Azure Pricing Calculator, what would be the total cost?

Accepted Answer

$70.00

Microsoft AZ-305 Designing Microsoft Azure Infrastructure Solutions Free Practice Test — 30 Questions

A lot more is already mapped out

About the Microsoft AZ-305 Designing Microsoft Azure Infrastructure Solutions Certification